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Authentication Method And System 



Description 



Field of invention 

5 

The present invention relates to the field of authentication techniques, and more 
particularly without limitation, to authentication of customer cards, financial 
transaction cards and copy protection. 

10 

Background and prior art 

Various sealing and printing techniques to provide authentication and to avoid 
15 unauthorised replication of products and documents are known from the prior 
art. However, an increasing economic damage results from forgery due to in- 
sufficient security. 

For authenticating documents and things U.S. Pat. No. 5,145,212 teaches the 
20 use of non-continuous reflective holograms or diffraction gratings. Such a holo- 
gram or diffraction grating is firmly attached to a surface that contains visual 
information desired to be protected from alteration. The reflective discontinuous 
hologram is formed in a pattern that both permits viewing the protected informa- 
tion through it and the viewing of an authenticating image or other light pattern 
25 reconstructed from it in reflection. In another specific authentication application 



2 



of this U.S. Patent a non-transparent structure of two side-by-side non- 
continuous holograms or diffraction patterns, each reconstructing a separate 
image or other light pattern, increases the difficulty of counterfeiting the struc- 
ture. 

5 

PCT application WO87/07034 describes holograms, including diffraction grat- 
ings, that reconstruct an image which changes as the hologram is tilted with 
respect to the viewer and in a manner that images reconstructed from copies 
made of the hologram in monochromatic light do not have that motion. 

10 

In UK Patent Application GB 2 093 404 sheet material items which are subject 
to counterfeiting have an integral or bonded authenticating device which com- 
prises a substrate having a reflective diffractive structure formed as a relief 
pattern on a viewable surface thereon and a transparent material covering the 
15 structure. Specified grating parameters of the diffractive structure result in pecu- 
liar, but easily discernable, optical colour properties that cannot be copied by 
colour copying machines. 

U.S. Pat. No. 4,661,983 describes a random-pattern of microscopic lines or 
20 cracks having widths in the order of micrometers that inherently forms in a di- 
electric coating layer of an authenticating device incorporated in a secure 
document. It permits identification of a genuine individual document by com- 
paring read-out line-position information derived by microscopic inspection with 
read-out digital codes of line-information obtained earlier at the time of fabrica- 
25 tion of the document. 

US-Patent No. 5,856,070 shows an authentication label containing a light dif- 
fracting structure. Unique parameters are randomly defined in the light diffract- 
ing structure by anisotropic process steps not under full control of the producer 
30 during the manufacturing of the diffracting structure to prevent copying or cre- 
ating an exact replica thereof. The resultant uniquely coloured authenticating 
pattern can be verified by simple observation with the naked eye. 
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US-Patent No. 4,218,674 shows an authentication method and system that 
uses an object being of base material having random imperfections. The ran- 
dom imperfections are converted into pulses along a predetermined measuring 
5 track over the surface of the object of base mater i a l . 

material. WO01 757831 shows a similar method that uses random gas enclo- 
sures in an authentication object. 

Summary of the invention 

10 

The present invention provides for an authentication method which is based on 
an authentication object, such as an authentication label, having a three- 
dimensional pattern of randomly distributed particles. The positions of the parti- 
cles are measured and used to provide an authentication code for a user. 

15 

When the authenticity of the object needs to be checked the positions of the 
particles in the object can be determined and used again to provide a check- 
code. The authentication code and the check-code can be used to determine 
whether the object is authentic or not. For example, if the authentication code 
20 and the check-code are identical, this means that the object is an original and 
not and unauthorised copy. 

In accordance with a preferred embodiment of the invention only the two- 
dimensional positions of the particles are used for the encoding. In this case the 
25 authentication requires a step to determine whether the object carries in fact a 
three-dimensional pattern of particles in order to ensure that the object is not a 
two-dimensional copy of the original three-dimensional object. This provides 
protection against two dimensional replication techniques, such as photocopy- 
ing. 

30 

In accordance with a further preferred embodiment of the invention a check- 
sum is generated as an authentication code. For example, the position data of 



4 

the particles is concatenated to form a polynomial. The polynomial is divided by 
a generator polynomial, which provides a cyclic redundancy check-sum. This 
check-sum can be used as an authentication code. 

5 In accordance with a further preferred embodiment of the invention a hashing 
scheme is used for encoding of the positions to provide the authentication code. 

In accordance with a further preferred embodiment of the invention the authen- 
tication object is retroreflective. The retroreflective effect is caused by the ran- 
10 dom distribution of particles, such as optical lens elements, within the object. 
The presence of a three-dimensional pattern of particles within the object can 
therefore be tested by checking whether the object is retroreflective or not. 

In accordance with a further preferred embodiment of the invention, the authen- 
15 tication object is produced from a reflective tape or sheeting. Such reflective 

tapes or sheetings are as such known from the prior art and are commonly used 
for reflective vehicle markings and reflective construction work zone signs. In 
particular, Scotchlite, which is commercially available from 3M, can be used for 
providing an authentication object of the invention. 

20 

The present invention is particularly advantageous as it facilitates to provide an 
inexpensive authentication object which features a high level of security as the 
authentication is based on a three-dimensional distribution pattern of the parti- 
cles within the authentication object, which is most difficult if not impossible to 
25 replicate. Preferably the three-dimensional distribution pattern has a random or 
pseudo random statistical distribution of the particles. Applications of the pres- 
ent invention include customer cards, financial transaction cards, automatic 
teller machine (ATM) cards and copy protection labels for data carriers, such as 
CDs and DVDs. 
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Brief description of the drawings 

In the following, preferred embodiments of the invention will be described, by 
5 way of example only, and with reference to the drawings, in which: 



Figure 1 



is illustrative of a first embodiment of an authentication 
label, 



10 . Figure 2 



is illustrative of a second embodiment of an authentication 
label, 



15 



Figure 3 



Figure 4 



is illustrative of a flow chart for generating an authentica- 
tion code for an authentication label, 

is block diagram of an image processing and encoding 
apparatus for generating of an authentication code for an 
authentication label, 



20 Figure 5 



is illustrative of a flow diagram for determining the authen- 
ticity of an authentication label, 



25 



Figure 6 



is illustrative of a method for determining if the authentica- 
tion label has a three-dimensional pattern of distributed 
particles, 



Figure 7 



is illustrative of an alternative method for determining if the 
authentication label has a three-dimensional pattern of 
distributed particles, 
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Figure 8 



is illustrative of a further alternative method for determin- 



ing if the authentication label has a three-dimensional 
pattern of distributed particles, 



5 Figure 9 



shows a block diagram of an authentication apparatus for 
determining the authenticity of an authentication label, 



Figure 10 



shows an optical recording medium with an attached or 
integrated authentication label. 
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Detailed description 

Figure 1 shows authentication label 100. Authentication label 100 has carrier 
15 layer 102 with embedded particles 104. The particles 104 are randomly distrib- 
uted within carrier layer 102, such that the positions of the particles 104 within 
carrier layer 102 define a random three-dimensional pattern. 

Carrier layer 102 consists of a translucent or transparent material, such as a 
20 synthetic resin or transparent plastic material, which enables to optically deter- 
mine the positions of particles 104. For example, carrier layer 102 has a thick- 
ness 106 of between 0,3 to 1 mm or any other convenient thick tfrtekness. 

Particles 104 can be glass beads or balls, or disks, metallic or pearlescent pig- 
25 ments with or without a light reflecting coating or any other convenient form or 
type of particle. The particles can be optically detected due to their reflective 
coating, or in the absence of such reflective coating, due to their reflection coef- 
ficient, which is different to the material of the carrier layer 102. Preferably parti- 
cles 104 are 5 to 200 micrometers in diameter. For example, particles 104 can 
30 be optical lens elements to provide the authentication label 100 with a reflective 
effect. 
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Preferably authentication label has adhesive layer 108 in order to glue authenti- 
cation label 100 to a product or document. The material properties of carrier 
layer 102 and adhesive layer 108 are chosen such that an attempt to remove 
authentication label 100 from the product or document would result in destruc- 
5 tion of authentication label 100. 

Figure 2 shows an alternative embodiment, where like reference numerals are 
used to designate like elements as in figure 1 . In the embodiment of figure 2 
particles 204 within carrier layer 202 of authentication label 200 are metallic or 
10 pearlescent pigments. Again the thickness 206 of carrier layer 202 is about 0,3 
to 1 mm or any other convenient thickness. 

For example, authentication label 200 has the size of a post stamp, which is 3 x 
4 mm and contains about two hundred particles 204. The random distribution of 
15 the two hundred particles within carrier layer 202 provides a sufficient unique- 
ness of authentication label 200. 

Figure 3 shows a flow chart for generating an authentication code based on the 
positions of the particles in an authentication object, such as an authentication 
20 label as described in figures 1 and 2. 

In step 300 an authentication object having a three-dimensional pattern of ran- 
domly distributed particles is provided. For example, the authentication object is 
a piece of Scotchlite tape, which is commercially available from 3M. 

25 

In step 302 the positions of the particles, which are embedded in the authenti- 
cation object are determined in two dimensions. This can be done by acquiring 
an image of the object and automatically determining the position information by 
means of image processing. 

30 

In step 304 the position information acquired in step 302 is encoded. This can 
be done by generating a check-sum or a hash-key on the basis of the position 



information. For example, a cyclic redundancy check (CRC) check-sum is cal- 
culated to provide the authentication code. This can be done by sorting of the 
measured x,y coordinates of the positions of the particles by the x-coordinate. 
The y-coordinate values are concatenated in the order as determined by the 
5 sorting to provide a polynomial, which is divided by the generator polynomial of 
the CRC encoding. 

For example a standard CRC-32 Polynom can be used as a generator polyno- 
mial as it is as such known for Ethernet, Infiniband, FibreChannel, and ATM 
10 transmissions (x 32 +x 26 +x 23 +x 22 +x 16 +x 12 +x 11 ^ The re- 

sult of this polynomial division is the authentication code for the authentication 
object, which is output in step 306. 

In order to increase the stability of the encoding, the y-coordinate values are 
15 shifted by a number of bit positions, such as four bits, to the left before the con- 
catenation. For example, only the four most significant bits of each y-coordinate 
value are used for the concatenation. 

Figure 4 shows a block diagram of image processing and encoding apparatus 
20 400. Image processing and encoding apparatus 400 has light source 402 and 
optical sensor 404 for taking an image of authentication label 406. For example, 
authentication label 406 has a similar design as authentication label 100 (cf. 
figure 1) and authentication label 200 (cf. figure 2). In addition, authentication 
label 406 has position markers 408, which relate authentication label 406 to a 
25 reference position. 

Optical sensor 404 is coupled to image processing module 410. Image proc- 
essing module 410 has an image processing program, which can determine the 
positions of the particles contained in authentication label 406 from the image 
30 data delivered by optical sensor 404. 



Image processing module 410 is coupled to encoding module 412. Encoding 
module 412 receives two-dimensional coordinate values from image processing 
module 410 in accordance with the two-dimensional position information ex- 
tracted by the image processing module 410 from the image data. Encoding 
5 module 412 encodes the two-dimensional coordinate values to provide a check- 
sum, hash key or another codeword being related to the two-dimensional distri- 
bution of the particles within authentication label 406. 

Encoding module 412 is coupled to a storage 414 in order to store the result of 
10 the encoding for later usage. For example, the image processing and encoding 
is done for a sequence of authentication labels for the purpose of mass produc- 
tion. 

In this case a sequence of authentication codes is stored in storage 414 during 
15 the mass production. These authentication codes can be printed and mailed to 
the users independently from the mailing of the authentication labels 406. For 
example, the authentication labels 406 are attached to customer cards or finan- 
cial transaction cards, such as ATM-cards, which are mailed to the customers. 
The customers receive by separate mail the corresponding authentication 
20 codes. 

Figure 5 shows an authentication method, which is based on an authentication 
label as explained above. In step 500 e.g. an authentication card with an at- 
tached authentication label, is inserted into a card reader. In step 502 the user 
25 is prompted to enter his or hers authentication code into the card reader. 

In step 504 the card reader makes a determination whether the authentication 
label has a three-dimensional pattern of particles or not. This can be done by 
various methods. Preferred embodiments of how this determination can be ac- 
30 complished, will be explained in more detail by making reference to the figures 
6, 7 and 8 below. 
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If it is determined in step 504 that there is no three-dimensional pattern of dis- 
tributed particles in the authentication label, a corresponding refusal message is 
outputted by the card reader in step 506. 

5 If the contrary is true, the authentication procedure goes on to step 508, where 
the position information of the particles, which are distributed in the authentica- 
tion label, is determined. As is has been determined before that there is in fact a 
three-dimensional distribution pattern of the particles it is sufficient to determine 
the position information in only two dimensions. 

10 

In step 510 the position information is encoded in order to provide a check code 
in step 512, which is representative of the combined position information deter- 
mined in step 508. 

15 In step 514 it is determined whether the check code is the same as the authen- 
tication code, which has been entered by the user in step 502. If this is not the 
case, a refusal message is outputted by the card reader in step 516. Alterna- 
tively, noise is added to the position information determined in step 508 to vary 
the position information within the measurement tolerance. If multiple attempts 

20 to generate a check code based on the varied position information which 
matches the authentication code have failed a final determination is made that a 
refusal message needs to be outputted. 

If it is determined in step 514, that the check code matches the authentication 
25 code an acceptance message is outputted in step 518. Alternatively, an action 
is performed or enabled depending on the field of application of the authentica- 
tion method, such as banking, access control, financial transaction, or copy 
protection. 

30 Figure 6 illustrates one preferred method for determining whether there is a 
three-dimensional pattern of particles within the authentication label (cf. step 
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504 of figure 5). This step serves to ensure that a two-dimensional copy of the 
original authentication label would lead to a refusal. 

Figure 6 shows authentication label 100 (cf. figure 1). In order to determine 
5 whether there is a three-dimensional pattern of particles within authentication 
label 100 or not three images of authentication label 100 are taken in a se- 
quence by means of camera 600. The first image is taken with diffuse light 
source 602 switched on and diffuse light sources 604 and 606 switched off. 

10 The second image is taken with light sources 602 and 606 switched off, while 
light source 604 illuminates authentication label 100 from a different illumination 
angle. Likewise the third image is taken with light sources 602 and 604 switched 
off, while light source 606 illuminates authentication label 100 from still another 
illumination angle. 

15 

The three images are combined to provide a resulting image. The combination 
can be done by digitally superimposing and adding the digital images. If there is 
in fact a three-dimensional distribution pattern of particles within authentication 
label regular geometric artefacts must be present in the resulting image. In the 
20 case of three light sources the geometric artefacts, which are produced, are 
triangles of similar size and shape. This effect is not reproducible by means of a 
two-dimensional copy of the original authentication label 100. 

As an alternative, more than three light sources at different illumination angles 
25 can be used for taking a corresponding numbers of images, which are super- 
posed and added. Changing the number of the light sources also changes the 
shape of the geometric artefact in the resulting image. 

Figure 7 shows an alternative method for determining the three-dimensionality 
30 of the distribution pattern of the particles within authentication label 100. For this 
application it is required, that authentication label 100 is reflective. The under- 
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lying principle is that the reflective effect can not be reproduced by means of 
two-dimensional copy of the authentication label 100. 

The test, whether authentication label 100 is in fact reflective or not, is done as 
5 follows: a first image is taken by camera 700 with diffuse light source 702 
switched on. The diffuse light source 702 will not invoke the reflective effect. 
The second image is taken with diffuse light source 702 switched off and direct 
light source 704 switched on. 

10 By means of half mirror 706 this produces an incident light beam, which is about 
perpendicular to the surface of authentication label 100. This light beam invokes 
the reflective effect. By comparing the first and the second images it is apparent 
whether authentication label 100 is reflective or not. This distinction can be 
made automatically by means of a relatively simple image processing routine. 

15 

Figure 8 shows a further alternative method for determining whether the distri- 
bution pattern of particles is three-dimensional or not. This method requires that 
the particles within authentication label 200 (cf. figure 2) are pearlescent pig- 
ments. 

20 

Presently, mica pigments coated with titanium dioxide and/or iron oxide are 
safe, stable and environmentally acceptable for use in coating, cosmetics and 
plastics. The pearlescent effect is produced by the behavior of incident light on 
the oxide coated mica; partial reflection from and partial transmission through 
25 the platelets create a sense of depth. The color of the transmitted light is com- 
plementary to the color of the reflected light. 

To check the presence of this colour effect, light source 800 producing diffuse, 
white light and two cameras 802 and 804 are used. The cameras 802 and 804 
30 are positioned at opposite sides of authentication label 200. 
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An incident light beam 806 is partly reflected by particle 204 into reflected light 
beam 808 and partly transmitted as transmitted light beam 810. If the colours of 
reflected light beam 808 and transmitted light beam 810 are complementary this 
means that authentication label 200 could not have been produced by two- 
5 dimensional copying. 

The test whether the colours of reflected light beam 808 and transmitted light 
beam 810 are complementary can be made by summing the colour coordinate 
values e.g. using the RGB colour coordinate system. The summation of the col- 
10 our coordinates must result in roughly a constant RGB value. 

Figure 9 shows a block diagram of authentication apparatus 900. Authentication 
apparatus 900 has slot 902 with mechanical guides for insertion of customer 
card 904. Customer card 904 carries authentication label 906, which is similar 
15 to authentication label 100 (cf. figure 1) or authentication label 200 (cf. figure 2). 

Authentication label 906 is attached to the surface of customer card 904 by an 
adhesive or is integrated within the card. In this instance the surface of cus- 
tomer card 904 must be transparent in order to enable to take an image of the 
20 surface of authentication label 906. For example, customer card 904 is made of 
a flexible, transparent plastic that has a smooth outer surface and which enve- 
lopes authentication label 906. 

Authentication label 906 has position markers 908, which relate authentication 
25 label 906 to a reference position. 

Authentication apparatus 900 has at least one light source 910 for illumination 
of authentication label 906, when customer card 904 is inserted into slot 902. 

30 Further, authentication apparatus 900 has optical sensor 912, such as a CCD 
camera. Optical sensor 912 is coupled to image processing module 914. Image 
processing 914 is equivalent to image processing module 410 of figure 4, i.e. it 
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provides position information of the particles to encoding module 916. The en- 
coding scheme used in encoding module 916 is the same as the one which is 
used in the image processing ending coding apparatus, which has been used to 
produce the authentication code for customer card 904 (cf. encoding module 
5 412 in Fig. 4). 

Authentication apparatus 900 has processing module 918, which provides user 
interface 920. 

10 In operation, a customer inserts his or her customer card 904 into slot 902. In 
response, one or more images at different illumination angles are taken from 
authentication label 906, which are provided from optical sensor 912 to image 
processing module 914. 

15 Image processing module 914 detects position markers 908 in an image, which 
has been taken by means of optical sensor 912. The positions of position mark- 
ers 908 indicate a dislocation of the authentication label within slot 902 with re- 
spect to the reference position. This dislocation is caused by mechanical toler- 
ances of the customer card 904 and / or of slot 902. Image processing module 

20 performs a projective transformation of the image data in order to compensate 
the dislocation. 

Next a determination is made if there is a three dimensional distribution pattern 
of particles within authentication label 906. This is done by means of any of the 
25 above-described methods performed by image processing module 914. 

When a three dimensional distribution pattern is detected, image processing 
module 914 determines the x,y-coordinate values of the particle positions. 
These coordinate values are provided to encoding module 916, which gener- 
30 ates a check-code as a result of the encoding. The check-code is entered into 
processing module 918. 



Processing module 918 prompts the user via user interface 920 to enter his or 
. her authentication code. Processing module 918 compares the check-code and 
the authentication code in order to make a determination whether the customer 
card 904 is in fact authentic or not. In case customer card 904 needs to be re- 
5 fused, a corresponding message is output on user interface 920. 

Figure 10 is illustrative of another field of application of the present invention for 
the purposes of copy protection. Figure 10 shows optical disk 950, such as a 
CD or DVD. The optical disk 950 has an area 952, which is covered by a data 
10 track. Outside area 952, such as within inner area 954, an annularly shaped 
authentication label 956 is glued to the surface of optical disk 950 or integrated 
within optical disk 950. Again authentication label 956 is similar to authentica- 
tion label 100 (cf. figure 1) or authentication label 200 (cf. figure 2). 

15 When a user desires to use the optical disk 950, he or she puts optical disk 950 
into a player or disk drive. In response, the user is prompted to enter the 
authentication code for usage of optical disk 950. The player or disk drive de- 
termines the check code for authentication label 956 and makes a determina- 
tion whether optical disk 950 is an original or an unauthorized copy based on a 

20 comparison of the check code and the authentication code. This can be done in 
accordance with the method steps as explained above with respect to figure 5. 
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